Vulnerabilities > Ipass
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-01-22 | CVE-2015-0925 | Code Injection vulnerability in Ipass Open Mobile 2.4.4 The client in iPass Open Mobile before 2.4.5 on Windows allows remote authenticated users to execute arbitrary code via a DLL pathname in a crafted Unicode string that is improperly handled by a subprocess reached through a named pipe, as demonstrated by a UNC share pathname. | 9.0 |
1997-12-29 | CVE-1999-1274 | Unspecified vulnerability in Ipass Roamserver 3.1 iPass RoamServer 3.1 creates temporary files with world-writable permissions. | 6.4 |